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Office Action Summary 

Application No. 

09/825,326 

Applicant(s) 

SHOHAT, DALIA 

Examiner 

Kaveh Abrishamkar 

Art Unit 

2131 



— The MAILING DATE of this communication appears on the cover sheet with the correspondence address — 
Period for Reply 


A SHORTENED STATUTORY PERIOD FOR REPLY IS SET TO EXPIRE 3 MONTH(S) FROM 
THE MAILING DATE OF THIS COMMUNICATION. 

- Extensions of time may be available under the provisions of 37 CFR 1 .136(a). In no event, however, may a reply be timely filed 
after SIX (6) MONTHS from the mailing date of this communication. 

- If the period for reply specified above is less than thirty (30) days, a reply within the statutory minimum of thirty (30) days will be considered timely. 

- If NO period for reply is specified above, the maximum statutory period will apply and will expire SIX (6) MONTHS from the mailing date of this communication, 

- Failure to reply within the set or extended period for reply will, by statute, cause the application to become ABANDONED (35 U.S.C. § 133). 
Any reply received by the Office later than three months after the mailing date of this communication, even if timely filed, may reduce any 
earned patent term adjustment. See 37 CFR 1.704(b). 

Status 

1 )S Responsive to communication(s) filed on 03 April 2001 . 
2a)D This action is FINAL. 2b)[x] This action is non-final. 

3) D Since this application is in condition for allowance except for formal matters, prosecution as to the merits is 

closed in accordance with the practice under Ex parte Quay/e, 1935 CD. 1 1 , 453 O.G. 213. 

Disposition of Claims 

4) 13 Claim(s) 1-10 is/are pending in the application. 

4a) Of the above claim(s) is/are withdrawn from consideration. 

5) D Claim(s) is/are allowed. 

Q)M Claim(s) 1-10 is/are rejected. 

7) D Claim(s) is/are objected to. 

8) D Claim(s) are subject to restriction and/or election requirement. 

Application Papers 

9) D The specification is objected to by the Examiner. 

10) D The drawing(s) filed on is/are: a)D accepted or b)D objected to by the Examiner. 

Applicant may not request that any objection to the drawing(s) be held in abeyance. See 37 CFR 1.85(a). 
Replacement drawing sheet(s) including the correction is required if the drawing(s) is objected to. See 37 CFR 1.121(d). 

1 1) D The oath or declaration is objected to by the Examiner. Note the attached Office Action or form PTO-152. 

Priority under 35 U.S.C. § 119 

12) D Acknowledgment is made of a claim for foreign priority under 35 U.S.C. § 119(a)-(d) or (f). 
a)D All b)D Some * c)D None of: 

1 .□ Certified copies of the priority documents have been received. 

2. D Certified copies of the priority documents have been received in Application No. . 

3. D Copies of the certified copies of the priority documents have been received in this National Stage 

application from the International Bureau (PCT Rule 17.2(a)). 
* See the attached detailed Office action for a list of the certified copies not received. 


Attachment(s) 

1) [3 Notice of References Cited (PTO-892) 4) Q Interview Summary (PTO-413) 

2) □ Notice of Draftsperson's Patent Drawing Review (PTO-948) Paper No(s)/Mail Date. . 

3) M Information Disclosure Statement(s) (PTO-1449 or PTO/SB/08) 5) □ Notice of Informal Patent Application (PTO-1 52) 

Paper No{s)/Mail Date 05/29/2001 . 6) □ Other: . 
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DETAILED ACTION 

1 . This action is in response to the communication filed on April 3, 2001 . Claims 1 
- 10 were received for consideration. No preliminary amendments for the claims were 
received. Claims 1 - 10 are currently under consideration. 

Information Disclosure Statement 

2. An initialed and dated copy of the Applicant's IDS form 1449 is attached to the 
Office Action. 

Claim Objections 

3. Claims 1 and 10 are objected to because of the following informalities: 
"database" should be written as one word. Appropriate correction is required. 

Claim Rejections - 35 USC § 102 

The following is a quotation of the appropriate paragraphs of 35 U.S.C. 102 that 
form the basis for the rejections under this section made in this Office action: 
A person shall be entitled to a patent unless - 

(b) the invention was patented or described in a printed publication in this or a foreign country or in public 
use or on sale in this country, more than one year prior to the date of application for patent in the United 
States. 
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4. Claims 1- 10 are rejected under 35 U.S.C. 102(b) as being anticipated by 
Deinhartetal. (U.S. Patent 5,911,143). 

Regarding claim 1, Deinhart discloses: 

Process for the automated creation of roles for a role-based access control 
system of an enterprise, whereas the system organizes and manages the access of 
users to sensitive information in an inter- and/or intranet, by means of at least one 
database comprising at least the relevant, existing security data about users and their 
access to sensitive information, the data base being connected to a computer, the 
process comprises the following steps: 

a) loading the security data from the database into the computer (Figure 3A, column 4 
line 37 - column 5 line 1 1 , column 7 lines 1 6 - 30, column 8 lines 52 - 65, column 1 0 
lines 1 - 26) 

b) mining the loaded data to find similarities that will allow the creation of organizational 
roles and/or functional roles (Figure 3A, column 4 line 37 - column 5 line 1 1 , column 7 
lines 16 - 30, column 8 lines 52 - 65, column 10 lines 1 - 26) and 

c) creation of at least one role based on the outcome of step b (Figure 3A, column 4 line 
37 - column 5 line 11, column 7 lines 16 - 30, column 8 lines 52 -65, column 10 lines 1 
-26). 


Application/Control Number: 09/825,326 Page 4 

Art Unit: 2131 

Claim 2 is rejected as applied above in rejecting claim 1 . Furthermore, Deinhart 
discloses: 

Process according to claim 1, whereas the computer is connected to the inter- 
and/or intranet and automatically assigns the created role(s) according to step c to the 
users in the inter- and/or intranet (column 4 line 37 - column 5 line 1 1 ). 

Claim 3 is rejected as applied above in rejecting claim 1 . Furthermore, Deinhart 
discloses: 

Process according to claim 1 , whereas the database is stored on a hard disk 
(column 3 lines 19-33). 

Claim 4 is rejected as applied above in rejecting claim 1 . Furthermore, Deinhart 
discloses: 

Process according to claim 1 , whereas the database is stored on the RAM of a 
computer (column 3 lines 19 - 33), 

Claim 5 is rejected as applied above in rejecting claim 1 . Furthermore, Deinhart 
discloses: 

Process according to claim 1 , whereas the mining of the loaded security data 
comprises clustering the loaded data to find suitable semantics for role description 
and/or statistics for values of all role attributes (Figure 3A, column 4 line 37 - column 5 
line 1 1 , column 7 lines 1 6 - 30, column 8 lines 52 - 65, column 1 0 lines 1 - 26). 
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Claim 6 is rejected as applied above in rejecting claim 1 . Furthermore, Deinhart 
discloses: 

Process according to claim 1 , whereas the mining of the loaded security data 
comprises association methods to find similarities in the loaded security data and 
preferably group as much as possible of the security data into as little as possible roles 
(Figure 3A, column 4 line 37 - column 5 line 1 1 , column 7 lines 1 6 - 30, column 8 lines 
52 - 65, column 1 0 lines 1 - 26). 

Claim 7 is rejected as applied above in rejecting claim 1 . Furthermore, Deinhart 
discloses: 

Process according to claim 1 , whereas the resulting roles are automatically 
checked and approved by the computer before they are assigned to the users (Figure 
3A, column 4 line 37 - column 5 line 1 1 , column 7 lines 16-30, column 8 lines 52 - 65, 
column 10 lines 1 - 26). 

Claim 8 is rejected as applied above in rejecting claim 1 . Furthermore, Deinhart 
discloses: 

Process according to claim 1 , whereas the relevant data is at least access 
control data, organizational data and/or functional data of the enterprise (Figure 3A, 
column 4 line 37 - column 5 line 1 1 , column 7 lines 1 6 - 30, column 8 lines 52 - 65, 
column 10 lines 1 -26). 
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Claim 9 is rejected as applied above in rejecting claim 1 . Furthermore, Deinhart 
discloses: 

Process according to claim 1 , that in a first step the data is explored by the 
computer (Figure 3A, column 4 line 37 - column 5 line 1 1 , column 7 lines 1 6 - 30, 
column 8 lines 52 - 65, column 10 lines 1 - 26). 

Claim 10 is rejected as applied above in rejecting claim 1 . Furthermore, Deinhart 
discloses: 

Process according to claim 1, whereas the created roles are automatically stored 
in the database (Figure 3A, column 4 line 37 - column 5 line 1 1 , column 7 lines 1 6 - 30, 
column 8 lines 52 - 65, column 1 0 lines 1 - 26). 
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Conclusion 


5. Any inquiry concerning this communication or earlier communications from the 
examiner should be directed to Kaveh Abrishamkar whose telephone number is 703- 
305-8892. The examiner can normally be reached on Monday thru Friday 8-5. 

If attempts to reach the examiner by telephone are unsuccessful, the examiner's 
supervisor, Ayaz Sheikh can be reached on 703-305-9648. The fax phone number for 
the organization where this application or proceeding is assigned is 703-872-9306. 

Any inquiry of a general nature or relating to the status of this application or 
proceeding should be directed to the receptionist whose telephone number is 703-305- 
3900. 
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